Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
File: qlTEdj6gGMPccCA9BO_nH9SxsGY.mft (raw, json)
Hash identifier: Jwa59by7cRLUoGm6E0aguDU56VWcthpeTv9ANCrC8LI=
Subject key identifier: 90:5B:31:8E:57:BA:8C:4D:94:E1:CC:64:FB:BA:57:30:C7:7F:FC:3A
Authority key identifier: AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
Certificate issuer: /CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Certificate serial: 0196BDEE461B2AE6CB5258AA82AF82AF6BDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
Manifest number: 1213
Signing time: Sun 11 May 2025 06:00:31 +0000
Manifest this update: Sun 11 May 2025 06:00:31 +0000
Manifest next update: Mon 12 May 2025 06:00:31 +0000
Files and hashes: 1: 3uOrqvmP8Ja1Ais3wLBFc-Yv8js.roa (hash: exOhjbpn5m/SyHb+kmTmnk1GW2qg2u8lsLmmerL5o9w=)
2: IzP3cDAX9aykSDzKdoH0u3AyA2M.roa (hash: NC8YDjUxW5EM3pV7QmdgO/vAJ9HwNpXuNP3EpqENObk=)
3: f2dJVu8muGYFnZFPcMivMl98KP8.roa (hash: rWmOSQ2QhYKl4L1IyTfTDLKWAGfQI+Kz8vdUqnsATxs=)
4: qlTEdj6gGMPccCA9BO_nH9SxsGY.crl (hash: 3C34qjyqc8k7ziuicDSE09HJMxDHyQQAt0orNswmZtw=)
5: svOlfPLlFDJ0sGLcz6b_IG_H3W0.roa (hash: zsvLBGGbQT+oIT4diXH9qGrVZIYbNUKP7yL6prMLg/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 06:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:ee:46:1b:2a:e6:cb:52:58:aa:82:af:82:af:6b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Validity
Not Before: May 11 06:00:31 2025 GMT
Not After : May 12 06:00:31 2025 GMT
Subject: CN=905b318e57ba8c4d94e1cc64fbba5730c77ffc3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bb:4b:fc:b5:6c:f0:02:23:e5:44:36:8c:bb:
c0:5a:2a:de:9c:cc:36:18:c0:5a:f2:56:a2:e3:8e:
b3:34:ba:11:e4:80:fc:fe:87:16:56:91:ed:4c:f6:
4d:f1:f1:9b:e3:f3:c1:0d:4b:24:70:e7:dd:ae:74:
b3:28:6d:93:7b:f8:03:61:e2:bc:f5:02:f8:5b:72:
64:fd:f4:9a:8a:f9:39:df:0a:10:49:12:59:95:13:
da:4b:e6:ea:2d:b3:c2:df:66:4f:b0:91:48:70:e3:
ec:37:2e:f6:b3:c4:2f:4e:53:b3:ef:51:06:2b:a4:
c2:d5:a8:58:90:11:28:02:0b:09:58:8c:63:e9:0f:
82:a0:72:e1:da:b3:6c:ff:e6:1e:49:cd:ed:47:cf:
54:dd:67:98:67:30:c1:62:5a:bb:c3:b4:e6:01:d5:
b4:33:37:00:6a:9a:17:4b:df:21:99:7b:dd:3d:98:
7b:dc:88:aa:91:7d:2e:c1:2e:43:72:56:73:c4:6b:
ae:ad:9f:83:ac:f9:3e:44:c1:5d:19:e1:fd:79:79:
0b:c0:10:e1:04:85:c6:41:73:ad:b8:25:69:6b:3e:
5b:8b:74:f1:95:29:45:a9:b0:dd:8b:e5:6c:74:ce:
6a:5a:f4:dc:1a:3d:6e:1a:03:37:3c:70:ef:16:1b:
73:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:5B:31:8E:57:BA:8C:4D:94:E1:CC:64:FB:BA:57:30:C7:7F:FC:3A
X509v3 Authority Key Identifier:
keyid:AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:89:de:da:33:67:3e:20:0d:fe:cd:44:7a:12:ae:55:86:3a:
bb:97:53:5c:25:d8:2d:58:98:1b:64:10:75:c6:2b:98:ea:f6:
52:18:c9:5b:87:8d:d5:ac:4b:f3:ba:c1:a4:59:d9:9d:74:24:
f8:a4:73:a6:c9:08:5f:df:59:74:3e:75:17:ba:a7:b6:86:ad:
32:9c:db:a0:9e:38:6f:04:e4:1c:42:cd:1d:b8:20:87:b5:c0:
84:6f:27:96:25:83:de:94:59:f1:3b:5b:cf:dd:d4:45:ef:a1:
12:08:b1:66:97:29:1c:68:e3:cc:16:2e:b7:db:c0:44:65:ba:
37:5d:34:fc:0c:ed:c9:7c:b6:8e:89:03:4a:5d:1f:41:06:ff:
d1:c8:a0:c2:b2:54:1c:fc:61:ed:7e:1b:e5:70:f4:3c:11:77:
0c:a0:41:9a:29:af:32:76:c6:92:19:2d:55:cb:24:f0:4a:d3:
0a:b1:f3:dd:6c:c9:ec:71:5b:2a:73:13:f4:d1:3f:ab:98:f1:
06:48:ab:c1:ef:63:cb:0b:af:35:0a:a7:95:39:f8:78:ab:bf:
29:44:87:c8:37:3a:66:f2:9d:a6:37:70:0a:53:c6:04:0c:0a:
70:1a:eb:45:b0:97:c4:d3:10:6a:b2:8a:1d:70:72:a7:da:5a:
67:8d:b1:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:30:10 2025 by rpki-client